$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7980d2a9-9ad0-487c-82a5-834ec5af0a39.roa File: 7980d2a9-9ad0-487c-82a5-834ec5af0a39.roa (raw, json) Hash identifier: cZaRUh6XwRfmF12dsq/k6jr47uCQ/r1vt8amoQvoIH4= Subject key identifier: 9C:4E:0F:C4:9E:31:1D:4E:68:77:A6:FB:4C:90:CA:2E:76:50:E6:1E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6020952E4EF7AB026CFC06D5BAB6A18DD9841C4E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7980d2a9-9ad0-487c-82a5-834ec5af0a39.roa Signing time: Fri 15 Aug 2025 15:30:07 +0000 ROA not before: Fri 15 Aug 2025 15:30:07 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:a::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:20:95:2e:4e:f7:ab:02:6c:fc:06:d5:ba:b6:a1:8d:d9:84:1c:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 15 15:30:07 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=ccfca8564bf481ebacf6c7ceb5539980d74f08b5aec0ddc35a6765d093dc054a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:02:53:64:c2:ca:ab:ca:03:f6:94:5f:76:e3: 47:cf:cb:f1:76:8a:b0:48:64:3d:4a:be:4c:5a:91: 63:1c:d7:92:e2:c7:1b:aa:05:2f:06:bb:2e:a1:dd: 1e:6b:5a:cf:67:ff:b5:c5:31:ed:00:cf:0e:40:99: 2c:bc:50:ed:21:f4:70:7c:54:24:03:55:93:6f:86: 4d:ed:6f:65:ac:c5:31:93:3f:e1:83:f5:b8:ee:2a: f1:25:dd:5c:d4:b1:46:dd:cb:f7:99:d9:60:2c:28: a9:92:24:c4:37:88:4a:3f:50:0f:ca:3b:2a:d8:20: 91:ee:9c:87:29:ad:b1:b9:1b:ce:da:c4:3a:1f:30: 58:cb:f8:70:10:13:b3:e9:70:f9:21:62:ae:e7:d4: 79:f8:d7:f8:9c:c1:f6:a7:9a:89:69:9c:40:8d:f9: 11:3e:9f:fc:dd:25:c8:06:54:0b:a7:f9:28:45:05: 5c:b3:50:87:9d:98:47:10:35:c8:3a:32:cc:14:0a: 15:93:82:05:44:1e:79:00:6b:c7:69:2b:60:0b:b2: 02:98:95:7c:f8:97:7b:c9:fc:dd:6e:c9:7c:84:57: 6e:e8:93:33:46:97:21:60:8b:9e:02:62:5d:c2:cb: 39:8b:b7:97:40:33:34:08:86:dc:c1:33:7a:c4:50: 8f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:4E:0F:C4:9E:31:1D:4E:68:77:A6:FB:4C:90:CA:2E:76:50:E6:1E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7980d2a9-9ad0-487c-82a5-834ec5af0a39.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:a::/47 Signature Algorithm: sha256WithRSAEncryption 7a:5e:cc:16:23:85:4d:2e:e3:e6:a9:95:9a:8d:27:28:0e:64: ad:85:2c:21:6c:32:f9:06:f1:63:49:35:ee:3f:7e:96:0c:bf: b8:25:ff:11:a0:65:2e:e0:a9:09:80:9d:36:17:33:30:f0:33: e5:08:15:32:31:d8:2c:a0:79:0e:69:fd:28:c3:ce:bc:65:e8: ed:f3:0b:d7:53:91:d0:bd:09:c6:89:ba:90:7a:fd:1e:17:45: b3:66:5b:5c:06:e9:7f:92:22:ce:6e:f7:f3:bd:9a:a3:34:5a: 3b:9c:13:cc:b3:7c:f9:a0:9e:09:bf:f7:33:90:8b:ad:57:27: dc:6b:1c:b8:02:1a:a7:7a:a4:1e:f8:2f:16:44:61:87:26:df: 3b:f0:f6:4a:e5:4c:a0:c6:8a:87:fa:1d:f3:8b:df:53:ed:69: 71:d6:f3:3a:2f:b9:e2:bc:31:1e:b3:76:fa:32:96:af:7f:3e: bc:5d:8f:7b:28:e9:1a:bd:ff:7e:58:cc:3a:b1:ff:c3:0e:fb: c2:88:7f:f8:81:02:a4:9b:0a:51:7c:81:8a:4b:a9:a2:f0:f3: aa:96:6d:97:ca:b9:a6:5d:7c:93:2c:82:42:3a:1c:2b:1c:68: 63:ff:de:86:58:02:13:40:f5:4c:6d:6f:71:9e:a1:22:29:ec: f6:db:fd:cf -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYCCVLk73qwJs/AbVurahjdmEHE4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE1MTUzMDA3WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjY2ZjYTg1NjRiZjQ4MWViYWNmNmM3Y2ViNTUzOTk4MGQ3 NGYwOGI1YWVjMGRkYzM1YTY3NjVkMDkzZGMwNTRhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnAlNkwsqrygP2lF9240fPy/F2irBIZD1KvkxakWMc15Li xxuqBS8Guy6h3R5rWs9n/7XFMe0Azw5AmSy8UO0h9HB8VCQDVZNvhk3tb2WsxTGT P+GD9bjuKvEl3VzUsUbdy/eZ2WAsKKmSJMQ3iEo/UA/KOyrYIJHunIcprbG5G87a xDofMFjL+HAQE7PpcPkhYq7n1Hn41/icwfanmolpnECN+RE+n/zdJcgGVAun+ShF BVyzUIedmEcQNcg6MswUChWTggVEHnkAa8dpK2ALsgKYlXz4l3vJ/N1uyXyEV27o kzNGlyFgi54CYl3CyzmLt5dAMzQIhtzBM3rEUI+NAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUnE4PxJ4xHU5od6b7TJDKLnZQ5h4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzc5ODBkMmE5LTlhZDAtNDg3Yy04MmE1LTgzNGVjNWFmMGEzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAPDwAAowDQYJKoZIhvcNAQELBQADggEBAHpezBYjhU0u4+aplZqNJygO ZK2FLCFsMvkG8WNJNe4/fpYMv7gl/xGgZS7gqQmAnTYXMzDwM+UIFTIx2CygeQ5p /SjDzrxl6O3zC9dTkdC9CcaJupB6/R4XRbNmW1wG6X+SIs5u9/O9mqM0WjucE8yz fPmgngm/9zOQi61XJ9xrHLgCGqd6pB74LxZEYYcm3zvw9krlTKDGiof6HfOL31Pt aXHW8zovueK8MR6zdvoylq9/Prxdj3so6Rq9/35YzDqx/8MO+8KIf/iBAqSbClF8 gYpLqaLw86qWbZfKuaZdfJMsgkI6HCscaGP/3oZYAhNA9Uxtb3GeoSIp7Pbb/c8= -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:15 2025 by rpki-client